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DETAILED ACTION 

1 . Claims 1 -20 are pending. 

Claim Objections 

2. Claims 1 , 9, 1 6, 1 7, and 1 8 are objected to because of the following informalities: the short form 
HTML should be write as HYPERTEXT MARKUP LANGUAGE (HTML) at least one time. Appropriate 
correction is required. > 

3. Claim 8 objected to because of the following informalities: it is depend on claim 7 instead of claim 
1 . It should depend on claim 1 . Appropriate correction is required. 

4. Claim 1 1 objected to because of the following informalities: it is depend on claim 10 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

5. Claim 12 objected to because of the following informalities: it is depend on claim 1 1 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

6. Claim 1 3 objected to because of the following informalities: it is depend on claim 1 1 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

7. Claim 14 objected to because of the following informalities: it is depend on claim 1 1 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

8. Claim 1 5 objected to because of the following informalities: it is depend on claim 1 1 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

9. Claim 1 6 objected to because of the following informalities: it is depend on claim 1 1 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

10. Claim 1 7 objected to because of the following informalities: it is depend on claim 1 1 instead of 
claim 9. It should depend on claim 9. Appropriate correction is required. 

1 1 . Claim 20 objected to because of the following informalities: it is depend on claim 1 9 instead of 
claim 18. It should depend on claim 18. Appropriate correction is required. 
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Claim Rejections - 35 USC § 102 

12. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the basis for 
the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on sale in 
this country, more than one year prior to the date of application for patent in the United States. 

13. Claims 1-20 are rejected under 35 U.S.C. 102(b) as being anticipated by Howard et al (Howard), 
US PG PUBS No. 20020069365. 

As per claim 1, Howard discloses: 

- Systems for secure HTML links, (page 6, paragraph 67, "If the client computer is running the 
limited-use browser/module, the server system generates a secure HTML"). 

- a protocol encryption tool operable to associate encrypted protocols with HTML links, (page 
7, paragraph 73, "The client system receives the requested content from the server system as either 
encrypted HTML content or secured document package"). 

- each protocol associated with a restricted browser function] (page 6, paragraph 67, "the 
server system generates a secure HTML page corresponding to the requested content and sends the 
page to the client system"). 

- an editor operable to publish an HTML link and associated encrypted protocol in a web 
page (page 1, paragraph 15, "a limited-use web browser and related security system allows providers 
of text and images or other content to publish content on a local-area network (LAN) or wide-area 
network (WAN), such as world wide web (web) and the Internet"), where HTML is one way of 
creating a web page, "publish the content" inherently including "an editor operable to publish". 

- a browser operable to display the web page and HTML link (page 1 -2, paragraph 1 5, "reads 
and displays any viewable web content including text, images, and streaming audio and video"). 

- the browser having one or more restricted function, (page 6, paragraph 62, "A secure 
document package is composed of a document manager and one or more web pages"), where the web 
pages can be a restricted function. 
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- each restricted function requiring at least selection of an HTML link (page 6, paragraph 67, 
"the server system generates a secure HTML page corresponding to the requested content and 
sends the page to the client system"). 

- a function confirmation before the browser executes the function (page 4, paragraph 42, 
"When the user request 313 is received by the server computer 301, the server component 302 
determines if a client key is associated with the request. If the key 314 in not present, the request is 
immediately rejected.") 

- a protocol decryption engine interfaced with the browser, the protocol decryption engine 
operable to decrypt the encrypted protocol associated with the html link and authorize execution of 
the associated restricted browser function without the function confirmation. (Page 4, paragraph 45, 
"When a document is secured using the common security model, the server component 302 encrypts 
the document prior to downloading it, and the limited user browser 312 decrypts the data for viewing 
only.") 

As per claim 2, Howard discloses: 

- the restricted browser function comprises a command to execute a binary. (Page 9, paragraph 
96, "a delivery object 701 which is the DLL binary for the document manager"). Moreover 

(page 4, paragraph 36, "The file management system is typically stored in the mass memory 215 and 
cause the processor 205 to execute the various steps required by the operating system"). 

As per claim 3, Howard discloses: 

- the restricted browser function comprises a command to save a binary. (Page 9, paragraph 96, "a 
delivery object 701 which is the DLL binary for the document manager"). Moreover 

(page 4, paragraph 36, "The file management system is typically stored in the mass memory 215 and 
cause the processor 205 to execute the various steps required by the operating system to input and 
output data and to store data in memory, including storing files on the mass memory 215."), where saving 
a file means storing a file. 
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As per claim 4, Howard discloses: 

- the restricted browser function comprises a command to execute a script (Page 2, paragraph 
28, "Any format that can be displayed via the internet, such as web graphic, common gateway interface 
(CGI) scripts, JAVA scripts"), where displaying a script means executing a script. 

As per claim 5, Howard discloses: 

- the restricted browser function comprises a command to save a script (Page 4, paragraph 36, 
"The file management system is typically stored in the mass memory 215 and cause the processor 
205 to execute the various steps required by the operating system to input and output data and to store 
data in memory, including storing files on the mass memory 215.") 

As per claim 6, Howard discloses: 

- a protocol filter associated with the browser and operable to preprocess plural encrypted 
protocols upon retrieval of the web page by the browser. (Page 8, paragraph 86, The server 
security component filters web client authentication, and web server request and response events"). 
Further Howard discloses (Page 6, paragraph 68, "Each document to be protected under the common 
security model (block 425) is marked for later encryption with the system level encryption key (SLE)"). 

As per claim 7, Howard discloses: 

- the protocol encryption tool comprises a private key for encryption of protocols. (Page 6, 
paragraph 68, "Each document to be protected under the common security model (block 425) is marked 
for later encryption with the system level encryption key (SLE)"). 

As per claim 8, Howard discloses: 
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- protocol decryption engine comprises a public key. (Page 6, paragraph 62, "to decrypt the 
package, it is necessary to know where to break up the individual pages before attempting the decrypt 
the file and even then encryption makes the content unusable to anyone but the owner of the machine 
with the client registered with the unique ULE key.") 

As per claim 9, Howard discloses: 

- A method for secure HTML links, (page 6, paragraph 67, "the server system generates a 
secure HTML"). 

- encrypting a protocol associated with a restricted browser function, (page 7, paragraph 
73, "The client system receives the requested content from the server system as either encrypted HTML 
content or secured document package"). Moreover, (page 6, paragraph 67, "the server system generates 
a secure HTML page corresponding to the requested content and sends the page to the client 
system"). 

- publishing the encrypted protocol in an HTML framework to associate with an HTML link 
that executes the restricted browser function; (page 1, paragraph 15, "a limited-use web browser and 
related security system allows providers of text and images or other content to publish content on a 
local-area network (LAN) or wide-area network (WAN), such as world wide web (web) and the 
Internet"), where HTML is one way of creating a web page. 

- displaying the HTML framework through a browser, (page 1-2, paragraph 15, "reads and 
displays any viewable web content including text, images, and streaming audio and video"). 

- the browser restricting execution of restricted functions by requiting a distinct confirmation 
before execution of the restricted function; (page 4, paragraph 42, "When the user request 313 is 
received by the server computer 301 , the server component 302 determines if a client key is 
associated with the request. If the key 314 in not present, the request is immediately rejected ") 

- decrypting the encrypted protocol at the browser, and authorizing execution of the restricted 
function without the distinct confirmation. (Page 4, paragraph 45, "When a document is secured using 



Application/Control Number: 10/777,600 Page 7 

Art Unit: 2109 

the common security model, the server component 302 encrypts the document prior to downloading 

it, and the limited user browser 312 decrypts the data for viewing only.") 

As per claim 10, Howard discloses: 
- encrypting a protocol further comprises encrypting the protocol with a private key. (Page 6, 
paragraph 68, "Each document to be protected under the common security model (block 425) is marked 
for later encryption with the system level encryption key (SLE)"). 

As per claim 11, Howard discloses: 

- decrypting the protocol further comprises decrypting the protocol with a public key. 
(Page 6, paragraph 62, "to decrypt the package, it is necessary to know where to break up the 
individual pages before attempting the decrypt the file and even then encryption makes the content 
unusable to anyone but the owner of the machine with the client registered with the unique ULE key.") 

As per claim 12, Howard discloses: 

- authorizing execution of restricted function further comprises authorizing execution of a 
binary by the browser. (Page 9, paragraph 96, "a delivery object 701 which is the DLL binary for the 
document manager 1 '). Moreover (page 4, paragraph 36, "The file management system is typically stored 
in the mass memory 215 and cause the processor 205 to execute the various steps required by the 
operating system"). 

As per claim 13, Howard discloses: 

- authorizing execution of the restricted function further comprises authorizing saving of a binary 
by the browser. (Page 9, paragraph 96, "a delivery object 701 which is the DLL binary for the document 
manager"). Moreover (page 4, paragraph 36, "The file management system js typically stored in the mass 
memory 215 and cause the processor 205 to execute the various steps required by the operating system 



I 



Application/Control Number: 10/777,600 Page 8 

Art Unit: 2109 

to input and output data and to store data in memory, including storing files on the mass memory 215."), 
where saving a file means storing a file. 

As per claim 14, Howard discloses: 

- authorizing execution of the restricted function further comprises authorizing execution of a 
script by the browser. (Page 2, paragraph 28, "Any format that can be displayed via the internet, such 
as web graphic, common gateway interface (CGI) scripts, JAVA scripts"), where displaying a script 
means executing a script. 

As per claim 15, Howard discloses: 

- authorizing execution of the restricted function further comprises authorizing saving of a script 
by the browser. (Page 4, paragraph 36, "The file management system is typically stored in the mass 
memory 215 and cause the processor 205 to execute the various steps required by the operating system 
to input and output data and to store data in memory, including storing files on the mass memory 215.") 

As per claim 16, Howard discloses: 

- preprocessing of plural encrypted protocols substantially upon loading of the HTML framework 
to the browser. (Page 6, paragraph 68, "Each document to be protected under the common security 
model (block 425) is marked for later encryption with the system level encryption key (SLE)"). 

As per claim 17, Howard discloses: 

- the distinct confirmation comprises a window displayed upon user selection of an HTML link 
associated with a restricted function, the window requiring at least one addition input by the user before 
execution of the restricted function, (page 1-2, paragraph 15, "reads and displays any viewable web 
content including text, images, and streaming audio and video"). 



As per claim 18, Howard discloses: 
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-An information handling system comprising: (page 1, paragraph 11, "secure information 
distribution system ") 

- a browser operable to retrieve and display a HTML link associated with a restricted 
function, (page 7, paragraph 73, "The client system receives the requested content from the server 
system as either encrypted HTML content or secured document package"). 

- the browser requiring a distinct confirmation of a selection of the HTML link before 
execution of the restricted function; (page 4, paragraph 42, "When the user request 313 is received by the 
server computer 301 , the server component 302 determines if a client key is associated with the 
request. If the key 314 in not present, the request is immediately rejected.") 

- an encrypted protocol associated with the HTML link] (page 6, paragraph 60, "The HTML 
source code is encrypted by the server digital processing system using a system level encryption (SLE) 
key.") 

- a protocol decryption engine interfaced with the browser and operable to override the 
distinct confirmation requirement upon decryption and validation of the encrypted protocol. (Page 4, 
paragraph 45, "When a document is secured using the common security model, the server component 
302 encrypts the document prior to downloading it, and the limited user browser 312 decrypts the data 
for viewing only"). Further Howard discloses, (page 4, paragraph 42, "When the user request 313 is 
received by the server computer 301 , the server component 302 determines if a client key is 
associated with the request. If the key 314 in not present, the request is immediately rejected.") 

As per claim 19, Howard discloses: 

- browser is further operable to retrieve a web page having plural encrypted protocols, (page 
6, paragraph 62, "A secure document package is composed of a document manager and one or more 
web pages, each of which is encrypted with the ULE ') 

- the information handling system further comprising, (page 1 , paragraph 1 1 , "secure 
information distribution system") 
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- a protocol filter interfaced with the browser and operable to identify the plural encrypted 
protocols for decrypting by the protocol decryption engine. (Page 8, paragraph 86, "The server security 
component filters web client authentication, and web server request and response events"). Further 
Howard discloses (Page 6, paragraph 68, "Each document to be protected under the common 
security model (block 425) is marked for later encryption with the system level encryption key 
(SLE)"). 

As per claim 20, Howard discloses: 

- a protocol database interfaced with the protocol decryption engine and having a table of 
protocols and associated restricted functions, (Page 6, paragraph 62, "to decrypt the package, it is 
necessary to know where to break up the individual pages before attempting the decrypt the file and even 
then encryption makes the content unusable to anyone but the owner of the machine with the client 
registered with the unique ULE key.") 

Conclusion 

14. The prior art made or record and not relied upon is considered pertinent to applicant's disclosure 
TITLE: Automated on-line information service and directory, particularly for the world wide web, US- 
6,324,538. 

TITLE: Object-based on-line transaction infrastructure, US-6,757,710. 

TITLE: Method and system for controlling access, by an authentication server, to protected computer 

resources provided via an Internet protocol network, US Pub. No. 2003/0046589. 

TITLE: System and method for carrying out information-related transactions using web documents 

embodying transaction enabling applets automatically launched and executed in response to reading 

URL-encoded symbols pointing thereto, US Pub. No. 2004/0046014. 

TITLE: System and method for network operation, US Pub. No. 2003/0233541 . 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's supervisor, 
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